$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa File: IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa (raw, json) Hash identifier: Ndo3IH3JddbJUP5n3ZOJ2pjO3XRrZFa5FB7OeOX6744= Subject key identifier: 20:48:8C:41:E3:37:78:AB:ED:60:A3:F7:88:CA:95:AC:B8:6E:DD:AE Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CD0 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa Signing time: Mon 26 Aug 2024 05:27:34 +0000 ROA not before: Mon 26 Aug 2024 05:27:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 61.63.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=20488C41E33778ABED60A3F788CA95ACB86EDDAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:d8:cd:af:dc:b3:4e:5e:c0:7d:aa:c9:3b:25: b1:32:af:5b:85:ec:90:cd:f0:34:5a:ad:e5:1e:29: c4:61:61:e4:24:d0:ce:b6:99:c3:bb:9b:34:3b:40: 05:1b:d2:7b:47:2b:23:9f:0a:d3:a9:4c:16:50:b3: e7:6e:72:04:65:9d:8e:ee:aa:ce:9d:2a:f4:50:bf: 5d:b8:e3:4a:af:e4:73:23:a2:92:91:79:c4:48:a6: 2a:65:d2:59:af:14:18:e0:52:bb:cd:e6:6f:7e:7b: 5f:6c:24:df:54:92:48:01:f8:d5:8e:82:9e:2d:75: da:a7:6b:f6:20:72:7b:15:ae:cf:f3:81:d5:31:fd: 92:9e:a6:99:b9:77:91:d6:3a:a7:67:4c:b0:2d:20: b6:0b:85:6f:6c:70:81:44:b5:ad:36:60:fe:c3:0b: b6:cc:2e:ff:ea:f4:f7:ba:cf:bc:28:46:84:2f:13: b1:b8:57:9b:82:4b:70:12:73:88:b0:1a:bd:73:ae: db:ed:cb:7d:06:8b:ec:b7:ff:ff:45:f8:43:6f:24: 6d:c1:16:d8:f4:3c:5c:49:8a:fa:51:f9:22:7b:db: e0:10:a3:e6:93:89:b9:f1:19:e6:5e:54:cd:b9:c4: 39:54:ba:67:83:4c:46:77:6e:86:c3:d8:0b:51:d1: 39:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:48:8C:41:E3:37:78:AB:ED:60:A3:F7:88:CA:95:AC:B8:6E:DD:AE X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/IEiMQeM3eKvtYKP3iMqVrLhu3a4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.96.0/19 Signature Algorithm: sha256WithRSAEncryption b4:3e:dc:ff:81:01:48:18:b7:11:ee:3f:80:8c:7b:e4:33:b9: 99:7b:5a:f0:b0:58:15:5a:79:55:18:cb:2a:40:9b:c6:fc:21: 0a:b3:e6:e1:da:6f:ba:fa:b2:ff:e7:d2:4c:f0:a4:15:c4:b3: 22:c6:d0:ca:9b:7d:98:16:26:4c:3b:27:f7:3f:32:21:98:30: dd:dc:35:83:d3:64:97:e9:b6:d3:85:9c:3f:06:c5:43:8b:f6: a0:36:ed:64:51:49:1d:ca:9f:6c:d7:90:27:0f:8a:6a:93:34: 29:88:a2:e7:c9:4c:ad:81:a3:c7:f4:b6:b4:22:a7:d0:7e:38: 81:fc:e1:44:76:ac:49:3f:33:f7:a5:b0:cd:b0:5b:dd:a0:9a: a9:f4:16:4a:ce:77:95:d0:f5:6e:8b:d5:23:e3:0e:33:eb:59: 28:91:5f:aa:cd:30:7c:91:10:c3:39:e9:69:e3:87:0f:06:94: 7b:dc:b8:8e:4c:40:30:dc:eb:46:e0:82:f2:15:22:76:44:dc: 16:87:a3:d3:69:66:91:67:2d:92:ae:98:46:cc:5c:04:ee:64: 88:2b:72:5a:52:1a:c9:73:ae:c9:5c:25:73:f5:a4:5a:79:f7: 78:2c:8d:d0:55:a8:ac:54:27:6e:d4:cf:ab:46:f6:3d:b5:62: e4:e6:a4:2a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwNDg4QzQxRTMzNzc4 QUJFRDYwQTNGNzg4Q0E5NUFDQjg2RUREQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD32M2v3LNOXsB9qsk7JbEyr1uF7JDN8DRareUeKcRhYeQk0M62 mcO7mzQ7QAUb0ntHKyOfCtOpTBZQs+ducgRlnY7uqs6dKvRQv12440qv5HMjopKR ecRIpipl0lmvFBjgUrvN5m9+e19sJN9UkkgB+NWOgp4tddqna/YgcnsVrs/zgdUx /ZKeppm5d5HWOqdnTLAtILYLhW9scIFEta02YP7DC7bMLv/q9Pe6z7woRoQvE7G4 V5uCS3ASc4iwGr1zrtvty30Gi+y3//9F+ENvJG3BFtj0PFxJivpR+SJ72+AQo+aT ibnxGeZeVM25xDlUumeDTEZ3bobD2AtR0Tk9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUIEiMQeM3eKvtYKP3iMqVrLhu3a4wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9JRWlNUWVNM2VLdnRZS1AzaU1x VnJMaHUzYTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPT9g MA0GCSqGSIb3DQEBCwUAA4IBAQC0Ptz/gQFIGLcR7j+AjHvkM7mZe1rwsFgVWnlV GMsqQJvG/CEKs+bh2m+6+rL/59JM8KQVxLMixtDKm32YFiZMOyf3PzIhmDDd3DWD 02SX6bbThZw/BsVDi/agNu1kUUkdyp9s15AnD4pqkzQpiKLnyUytgaPH9La0IqfQ fjiB/OFEdqxJPzP3pbDNsFvdoJqp9BZKzneV0PVui9Uj4w4z61kokV+qzTB8kRDD Oelp44cPBpR73LiOTEAw3OtG4ILyFSJ2RNwWh6PTaWaRZy2SrphGzFwE7mSIK3Ja UhrJc67JXCVz9aRaefd4LI3QVaisVCdu1M+rRvY9tWLk5qQq -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org